A secondary comment following on from the above, where a password is duplicated due to being used in a phone app and a web site logon the details of both the logon id and password are the same but they are two or more ways of accessing the same site / company. web site and application, application also on more than one phone / tablet. A simple flag to say that it is a valid duplicate and to ignore would be a nice idea.